nanog mailing list archives
Re: ABOVE.NET SECURITY TRUTHS?
From: Deepak Jain <deepak () ai net>
Date: Sat, 29 Apr 2000 16:15:43 -0400 (EDT)
This statement is a litle too broad. I would contest that the design of, say, FreeBSD's /dev/random permits sufficient entropy collection to usefully initialise a strong hashing algorithm with a non-predictable vector.
Okay, you know where I was going. Simple question - where are you finding entropy in a FreeBSD machine? (sufficient being a very relative term) Not intending to scare anyone. Deepak Jain AiNET
Current thread:
- Re: ABOVE.NET SECURITY TRUTHS?, (continued)
- Re: ABOVE.NET SECURITY TRUTHS? Christopher B. Zydel (Apr 29)
- Re: ABOVE.NET SECURITY TRUTHS? Dave Crocker (Apr 29)
- Re: ABOVE.NET SECURITY TRUTHS? Henry R. Linneweh (Apr 29)
- Re: ABOVE.NET SECURITY TRUTHS? Christopher B. Zydel (Apr 29)
- RE: ABOVE.NET SECURITY TRUTHS? Bandy Rush (Apr 28)
- RE: ABOVE.NET SECURITY TRUTHS? John Fraizer (Apr 28)
- Re: ABOVE.NET SECURITY TRUTHS? Steven M. Bellovin (Apr 28)
- Re: ABOVE.NET SECURITY TRUTHS? Paul Ferguson (Apr 28)
- Re: ABOVE.NET SECURITY TRUTHS? Kevin Oberman (Apr 29)
- Re: ABOVE.NET SECURITY TRUTHS? Deepak Jain (Apr 28)
- Re: ABOVE.NET SECURITY TRUTHS? Joshua Goodall (Apr 29)
- Re: ABOVE.NET SECURITY TRUTHS? Deepak Jain (Apr 29)
- RE: ABOVE.NET SECURITY TRUTHS? Roeland Meyer (E-mail) (Apr 29)
- Re: ABOVE.NET SECURITY TRUTHS? Paul Ferguson (Apr 28)
- RE: ABOVE.NET SECURITY TRUTHS? Roeland Meyer (E-mail) (Apr 29)
- RE: ABOVE.NET SECURITY TRUTHS? Deepak Jain (Apr 29)
- Re: ABOVE.NET SECURITY TRUTHS? Austin Schutz (Apr 29)
- Re: ABOVE.NET SECURITY TRUTHS? Michael Shields (Apr 29)